Re: Linux v2.6.0-test1

Alan Cox (alan@lxorguk.ukuu.org.uk)
14 Jul 2003 12:33:38 +0100

On Llu, 2003-07-14 at 12:39, John Bradford wrote:
> > > > The point of the test versions is to make more people realize that they
> > > > need testing
> > >
> > > Are all the known security issues in 2.4 now fixed in 2.6.0-test1?
> >
> > No, and several more have been added in 2.6-test only.
>
> As far as I know, they are only information disclosure ones, not
> directly exploitable vulnerabilities, or am I wrong?

Last time I checked there were remote DoS attacks and local root attacks
present in 2.5.7x

> > > This has been the only major reason for keeping of most of my
> > > production machines running 2.4 for quite a while. If not, can we get
> > > the fixes in at the earliest opportunity?
> >
> > Sure.. send the fixes to Linus
>
> Is anybody even keeping track of this, though? Picking thorough LKML
> to see what did and didn't go in doesn't seem particularly exciting to
> me.

Then you'll just have to wait a few months

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/